Two critical vulnerabilities exist in the javascript API of Adobe
Acrobat Professional 7. A remote attacker who successfully exploits
these vulnerabilities can execute restricted functions and arbitrary
codes on the affected system.

Affected Software Versions:

Adobe Acrobat Professional 7.0.9

Details:

These two vulnerabilities specially exist in an unpublicized
fucntion called "app.checkForUpdate()", which are exploited through a
callback function.

As we know, when we call "app.newDoc()" normally, the function can
not be executed because of the security feature of PDF's javascript,
but the above code can still execute this function successfully, other
restricted functions can also be executed by exploiting this
vulnerability.

The POC for triggering the memory corruption vulnerability:

function myCallBack()
{
app.alert("Corrupting the memory");

// Open a new report will corrupt the memory
var rep = new Report();

app.alert("If the application has not been crashed, try to close the
application and then you will get it.");
}